From 45dfd864e0d06582dec7b01d6da0ce75ccbfd8c9 Mon Sep 17 00:00:00 2001
From: Lumpiasty <arek.dzski@gmail.com>
Date: Mon, 12 May 2025 01:04:00 +0200
Subject: [PATCH] add vault secrets operator

---
 infra/controllers/vault-secrets-operator.yaml | 35 +++++++++++++++++++
 infra/kustomization.yaml                      |  1 +
 2 files changed, 36 insertions(+)
 create mode 100644 infra/controllers/vault-secrets-operator.yaml

diff --git a/infra/controllers/vault-secrets-operator.yaml b/infra/controllers/vault-secrets-operator.yaml
new file mode 100644
index 0000000..d4270c9
--- /dev/null
+++ b/infra/controllers/vault-secrets-operator.yaml
@@ -0,0 +1,35 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: vault-secrets-operator
+---
+apiVersion: source.toolkit.fluxcd.io/v1
+kind: HelmRepository
+metadata:
+  name: hashicorp
+  namespace: vault-secrets-operator
+spec:
+  interval: 24h
+  url: https://helm.releases.hashicorp.com
+---
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: vault-secrets-operator
+  namespace: vault-secrets-operator
+spec:
+  interval: 30m
+  chart:
+    spec:
+      chart: vault-secrets-operator
+      version: 0.10.0
+      sourceRef:
+        kind: HelmRepository
+        name: hashicorp
+        namespace: vault-secrets-operator
+      interval: 12h
+  values:
+    defaultVaultConnection:
+      enabled: true
+      address: "https://openbao.lumpiasty.xyz:8200"
diff --git a/infra/kustomization.yaml b/infra/kustomization.yaml
index 559f729..b4219cf 100644
--- a/infra/kustomization.yaml
+++ b/infra/kustomization.yaml
@@ -11,6 +11,7 @@ resources:
   - controllers/k8up.yaml
   - controllers/openbao.yaml
   - controllers/external-secrets.yaml
+  - controllers/vault-secrets-operator.yaml
   - controllers/mongodb-operator.yaml
   - controllers/cloudnative-pg.yaml
   - diskpools/anapistula-delrosalae-hdd.yaml